ab6e378c5a5ee2c4f493f95cefc3203095816df0b451f33419904f0c519addc9 | Triage

Submit
Reports

Overview

overview

8

Static

static

ab6e378c5a...c9.exe

windows7-x64

8

ab6e378c5a...c9.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

Static task

static1

Behavioral task

behavioral1

Sample

ab6e378c5a5ee2c4f493f95cefc3203095816df0b451f33419904f0c519addc9.exe

Resource

win7-20220901-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ab6e378c5a5ee2c4f493f95cefc3203095816df0b451f33419904f0c519addc9.exe

Resource

win10v2004-20221111-en

windows10-2004-x64

0 signatures

150 seconds

General

Target

ab6e378c5a5ee2c4f493f95cefc3203095816df0b451f33419904f0c519addc9
Size

338KB
MD5

c62624ecb1e45a94f6ad8cc4aaf963b6
SHA1

28993935af968be481c8f036dba22e56d3cd974e
SHA256

ab6e378c5a5ee2c4f493f95cefc3203095816df0b451f33419904f0c519addc9
SHA512

29bac226c57fe6a872de8b171dbd0ce0c8586b54eb79c026c8c4ea6d4e855b5d94ccb6a73817339695d1148a4f5b9b7b1de41d4cf9c84e8098ad0752b31f0084
SSDEEP

6144:3MzQ9SRr2I6jRZNp0H8vIz3YX5Sze2wpchpkUJ1HqBh4kHIG+:xSf6jpQTKk9h1HqAG+

Score

N/A

Malware Config

Signatures

Files

ab6e378c5a5ee2c4f493f95cefc3203095816df0b451f33419904f0c519addc9
.exe windows x86

70d8fea638a777868ed479b89ebde76d

Code Sign

5c:91:0a:e6:1d:e2:3c:a3:4f:37:d3:8f:e5:01:c3:d7
Certificate

Issuer

CN=SMCh

Not Before

22/06/2012, 05:35

Not After

31/12/2039, 23:59

Subject

CN=SMCh

Extended Key Usages

ExtKeyUsageCodeSigning

77:0b:0b:c9:3a:f0:0f:33:b7:c4:30:78:9c:4c:12:6b:f0:52:dc:f6
Signer

Actual PE Digest

77:0b:0b:c9:3a:f0:0f:33:b7:c4:30:78:9c:4c:12:6b:f0:52:dc:f6

Digest Algorithm

sha1

PE Digest Matches

true

Signature Validations

Trusted

false

Verification

Signing Certificate

CN=SMCh

01/12/2022, 14:34
Valid: false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineW
GetCommandLineA
CloseHandle
GetWindowsDirectoryW
lstrcatW
CreateFileW
VirtualAllocEx
GetModuleHandleA
GetProcAddress

user32

RegisterClassExA
CreateWindowExA
LoadIconA
LoadCursorA

advapi32

RegCloseKey
RegOpenKeyW

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data2
Size: 303KB - Virtual size: 302KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 268B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

© 2018-2025

Terms | Privacy